CVE-2026-41106
CRITICAL
NVD
CVSS Score
9.3
Severity
CRITICAL
Published
Jul 02, 2026
Vendor
unknown
Description
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.